what is claimed is: 



CLAIMS 



1 . An apparatus allowing for the dynamic allocation of network resources among a plurality 

5 of users, comprising 

a partition object space storing a plurality of partition objects; the plurality including 
at least one user partition object having at least one attribute defining an allocation of a 
network resource to a user; 

a partition management module operative to: 
1 0 dynamically create a user partition object in the partition object space in 

response to an identification of a new user, 

a partitioning mechanism operably connected to a path transmitting data packets 
between a network resource and a plurality of respective users, 

wherein the partitioning mechanism is operative to: 
T 5 associate users with corresponding user partition objects, and 

enforce the respective network resource allocations defined in the user 
partition objects. 

2. The apparatus of claim 1 wherein the partition management module is further operative 
20 to delete inactive user partition objects from the partition object space. 

3. The apparatus of claim 2 wherein the partition management module Is operative to 
delete inactive user partition objects from the partition object space as required for new 
users. 

25 

4. The apparatus of claim 2 wherein an inactive user partition object is identified in relation 
to a threshold period of inactivity. 

5. The apparatus of claim 3 wherein an inactive user partition object is identified in relation 
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to a threshold period of inactivity. 



6. The apparatus of claim 1 wherein the partition objects further include at least one 
dynamic partition object having at least one attribute defining a first allocation of a network 
5 resource and at least one attribute operable to control allocations of the network resource 
within the first allocation; 

wherein the partition management module creates a user partition object defining a 
user partition within the parameter(s) of a corresponding dynamic partition object. 

10 7. The apparatus of claim 6 wherein each dynamic partition object is associated with a 
characteristic of the data packets transmitted in the communication path, wherein the 
partition management module is operative to identify the dynamic partition object 
associated with a data packet and create a corresponding user partition object 

15 8. An apparatus allowing for the dynamic allocation of network resources among a plurality 
of users, wherein the network resources and the users are operably connected to a 
computer network, comprising 

a partition object space storing a plurality of partition objects; the plurality of partition 
objects including at least one dynamic partition object and at least one user partition object; 
20 a traffic class database storing traffic classes in association with corresponding 

dynamic partition objects; 

wherein each dynamic partition object has at least one attribute defining a 
first allocation of a network resource to a corresponding traffic class and at 
least one attribute defining a second allocation, within the first allocation, of a 
25 network resource to a user; 

wherein each user partition object has at least one attribute defining an 
allocation of a network resource to a user; 
a partitioning mechanism operably connected to the computer network to receive 
and transmit data flows^ the partitioning mechanism further operative to: 
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identify a new data flow and the traffic class associated with the data flow; 
and, 

a partition management module operative to, in response to a new data flow: 

identify the dynamic partition object associated with the traffic class of the 
5 new data flow; 

identify a new user associated with the data flow; 
dynamically create a user partition object in the partition object space in 
response to an identification of a new user, according to the attributes of the 
dynamic partition object associated with the new data flow; 
1 0 return a partition object to the partition mechanism; 

wherein the partitioning mechanism is further operative to enforce the allocations 
defined in the user partition objects to control access to a network resource among a 
plurality of users. 

1 5 9. The apparatus of claim 8 wherein the partition management module is further operable 
to reclaim inactive partition objects from the partition object space. 

1 0. An apparatus operable to dynamically allocate access to a network resource among a 
plurality of users, comprising: 
20 a partition management module operative to dynamically create partitions in 

response to new users; and, 

a partitioning mechanism operative to enforce the partitions to control access to a 
network resource among a plurality of users. 

2511. A method allowing for dynamic allocation of a network resource, the method 
comprising the steps of: 

(a) recognizing a new user of a nehvork resource; 

(b) creating a partition on demand for the new user, wherein the partition is operable 
to allocate utilization of the network resource to the new user; and, 
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(c) disposing of the partition when no longer needed. 



12. The method of claim 1 1 wherein the disposing step comprises the steps of 

reclaiming the partition for a subsequent new user if the partition is inactive. 

5 

1 3. The method of claim 1 1 further comprising 

receiving a set of parameters defining a partition. 

14. The method of claim 11 wherein the partition is configurable based on a characteristic 
10 of the user's utilization of the network resource. 

15. The method of claim 1 1 wherein the partition is operable to provide a minimum 
allocation of the network resource to the new user. 

15 16. The method of claim 1 1 wherein the partition is operable to limit utilization of the 
network resource. 

1 7. The method of claim 1 1 wherein the partition is implemented by class-based weighted 
fair queueing functionality. 

20 

18. The method of claim 11 wherein the partition is implemented by committed access rate 
functionality. 

19. A method allowing for dynamic allocation of a network resource, the method 
25 comprising the steps of: 

(a) recognizing a new user of a network resource; 

(b) dynamically creating an allocation of the network resource on demand for the 
new user; and, 

(c) disposing of the allocation when no longer needed. 
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20. A method allowing for dynamic allocation of network resources, the method comprising 
the steps of 

recognizing new users of a network resource; 

creating user partitions on demand for new users, wherein each user partition is 
5 operable to allocate utilization of a network resource to a user; and, 
reclaiming inactive user partitions for subsequent new users. 

21 . The method of claim 20 wherein inactive partitions are reclaimed when necessary for 
subsequent new users. 

10 

22. The method of claim 20 wherein inactive partitions are reclaimed automatically. 

23. The method of claim 20 further comprising the steps of 

receiving a set of parameters defining a user partition and a partition cap parameter 
1 5 defining a desired limit on the number of user partitions; and 

wherein the creating step (c) is conditioned on the number of existing user partitions 
not exceeding the partition cap. 

24. The method of claim 23 further comprising the steps of 

20 receiving a set of parameters defining an overflow partition; and 

assigning new users to the overflow partition, if the number of user partitions exceeds 
the partition cap. 

25. A method allowing for dynamic allocation of network resources, the method comprising 
25 the steps of 

recognizing new users of a network resource; 

dynamically creating partitions in a partition object space on demand for the new 
users, wherein each partition is operable to control utilization of a network resource; 
monitoring use of the partitions; and. 
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reclaiming inactive partitions in the partition object space for subsequent new users, 
as needed. 

26. A method facilitating the dynamic allocation of network resources, the method 
5 comprising the steps of: 

(a) recognizing a new user associated with a data flow; 

(b) associating a traffic classification to the data flow; 

(c) creating a partition on demand for the new user, wherein the traffic classification 
determines the parameters of the partition; 

1 0 (d) enforcing the partition on the data flow; and, 

(e) disposing of the partition when no longer needed. 

27. The method of claim 26 wherein the disposing step comprises 

reclaiming the partition for a subsequent new user. 

15 
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